""" Admin routes and functionality for VPN Server """ from fastapi import APIRouter, Depends, HTTPException, status, Request, File, UploadFile from fastapi.responses import JSONResponse, FileResponse, StreamingResponse from fastapi.security import OAuth2PasswordBearer from sqlalchemy.orm import Session from typing import List, Optional from datetime import datetime import os from models.user import User, UserRole from models.system import SystemHealth, AuditLog, Alert, ServerConfig from services import backup_service, monitoring_service from core.auth import get_current_active_user, get_current_admin_user from core.database import get_db from schemas.admin import ( SystemHealthResponse, ServerConfigUpdate, AlertResponse, AuditLogResponse ) router = APIRouter( prefix="/admin", tags=["admin"], responses={404: {"description": "Not found"}}, ) @router.get("/dashboard", response_model=dict) async def admin_dashboard( current_user: User = Depends(get_current_admin_user), db: Session = Depends(get_db) ): """Admin dashboard data""" system_health = await monitoring_service.get_system_health() active_alerts = db.query(Alert).filter(Alert.status == 'active').order_by(Alert.created_at.desc()).all() audit_logs = db.query(AuditLog).order_by(AuditLog.timestamp.desc()).limit(50).all() return { "system_health": system_health, "active_alerts": active_alerts, "audit_logs": audit_logs } @router.get("/system-health", response_model=SystemHealthResponse) async def get_system_health( current_user: User = Depends(get_current_admin_user) ): """Get real-time system health metrics""" return await monitoring_service.get_system_health() @router.post("/server-config", response_model=dict) async def update_server_config( config: ServerConfigUpdate, current_user: User = Depends(get_current_admin_user), db: Session = Depends(get_db) ): """Update server configuration""" try: # Create backup before updating await backup_service.backup_config('pre_update') # Update configuration current_config = db.query(ServerConfig).first() for key, value in config.dict(exclude_unset=True).items(): setattr(current_config, key, value) db.commit() # Log the change audit_log = AuditLog( user_id=current_user.id, action='update_config', details='Server configuration updated' ) db.add(audit_log) db.commit() # Restart required services await monitoring_service.restart_services() return {"status": "success"} except Exception as e: db.rollback() raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail=str(e) ) @router.post("/backup", response_model=dict) async def create_backup( include_user_data: bool = False, current_user: User = Depends(get_current_admin_user), db: Session = Depends(get_db) ): """Create a backup of server configuration""" try: backup_path = await backup_service.create_backup(include_user_data) # Log the backup creation audit_log = AuditLog( user_id=current_user.id, action='create_backup', details=f'Backup created: {os.path.basename(backup_path)}' ) db.add(audit_log) db.commit() filename = f'outline_backup_{datetime.now().strftime("%Y%m%d_%H%M%S")}.zip' return FileResponse( path=backup_path, filename=filename, media_type='application/zip' ) except Exception as e: db.rollback() raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail=str(e) ) @router.get("/audit-logs", response_model=List[AuditLogResponse]) async def get_audit_logs( limit: int = 50, current_user: User = Depends(get_current_admin_user), db: Session = Depends(get_db) ): """Get audit logs""" logs = db.query(AuditLog).order_by(AuditLog.timestamp.desc()).limit(limit).all() return logs @router.get("/alerts", response_model=List[AlertResponse]) async def get_alerts( status: Optional[str] = None, current_user: User = Depends(get_current_admin_user), db: Session = Depends(get_db) ): """Get system alerts""" query = db.query(Alert) if status: query = query.filter(Alert.status == status) alerts = query.order_by(Alert.created_at.desc()).all() return alerts